Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/d04f1b-074c-495e-a431-76b1ae62f072/1/nXXPbGAZ8FnkZeTesgTNJCvUtGU.mft
File: nXXPbGAZ8FnkZeTesgTNJCvUtGU.mft (raw, json)
Hash identifier: FQ4NTx2IqbgKu1p8GkeJOJSev6r5lAIyFvDcY75yHxw=
Subject key identifier: 71:E3:EF:D0:5F:7F:E1:28:14:26:70:4C:B6:EB:34:74:A5:20:23:EB
Authority key identifier: 9D:75:CF:6C:60:19:F0:59:E4:65:E4:DE:B2:04:CD:24:2B:D4:B4:65
Certificate issuer: /CN=9d75cf6c6019f059e465e4deb204cd242bd4b465
Certificate serial: 0198D705B57912D28C546AC76A37C483BCD0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nXXPbGAZ8FnkZeTesgTNJCvUtGU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/d04f1b-074c-495e-a431-76b1ae62f072/1/nXXPbGAZ8FnkZeTesgTNJCvUtGU.mft
Manifest number: 126C
Signing time: Sat 23 Aug 2025 13:02:12 +0000
Manifest this update: Sat 23 Aug 2025 13:02:12 +0000
Manifest next update: Sun 24 Aug 2025 13:02:12 +0000
Files and hashes: 1: k3gz5duj9CFhYELeViKRfCBvdLQ.roa (hash: sqXEDoIPEFamPJfQ+MXgutDdyy3EAS9+6SZZLlnP/eE=)
2: nXXPbGAZ8FnkZeTesgTNJCvUtGU.crl (hash: LYELZ7O3tv3oKyYkgUUXDPHCQ1InzusP8H0fXGogtuY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/83/d04f1b-074c-495e-a431-76b1ae62f072/1/nXXPbGAZ8FnkZeTesgTNJCvUtGU.crl
rsync://rpki.ripe.net/repository/DEFAULT/83/d04f1b-074c-495e-a431-76b1ae62f072/1/nXXPbGAZ8FnkZeTesgTNJCvUtGU.mft
rsync://rpki.ripe.net/repository/DEFAULT/nXXPbGAZ8FnkZeTesgTNJCvUtGU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 12:50:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d7:05:b5:79:12:d2:8c:54:6a:c7:6a:37:c4:83:bc:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d75cf6c6019f059e465e4deb204cd242bd4b465
Validity
Not Before: Aug 23 13:02:12 2025 GMT
Not After : Aug 24 13:02:12 2025 GMT
Subject: CN=71e3efd05f7fe1281426704cb6eb3474a52023eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:74:17:7f:d1:0b:88:d7:2c:68:e1:a1:09:f4:
64:b3:cd:13:4f:01:99:2d:8f:28:64:5f:d1:33:de:
10:d3:19:1a:ed:ea:ef:44:c1:7e:7e:fe:02:df:fb:
ba:50:ef:3a:a8:70:d0:1e:18:d1:65:54:20:bb:ff:
2f:54:21:f3:76:47:a2:b3:d6:44:db:84:a0:95:cf:
b3:aa:66:b1:a4:97:65:c1:f3:ee:d8:85:7a:f4:13:
b3:a2:ea:e4:e6:1c:3d:91:18:57:20:ae:09:97:3e:
9b:e7:e9:d1:eb:ae:29:80:7b:94:30:98:36:d0:bc:
99:b8:7e:61:7a:8f:6f:d6:3e:b4:3f:4b:19:42:15:
01:18:a6:a0:27:0b:bc:71:a3:a5:b0:e2:c9:fe:a8:
86:6a:d1:2c:50:7c:c6:3a:3c:44:52:f2:3f:2d:0e:
60:ce:6a:7d:72:29:e6:64:5f:b9:23:6d:3c:e6:ff:
e3:0d:95:b8:40:81:8d:a3:51:7c:a7:c6:2a:1c:f5:
d8:81:7f:31:84:05:04:c2:5a:50:ff:49:0a:a7:66:
6e:d2:61:f5:a9:a2:55:01:10:df:2b:c2:11:b8:d7:
ff:f6:ab:ad:62:70:f6:73:bd:60:bc:44:13:0b:20:
c2:c1:47:5a:ee:64:d0:01:67:ee:7c:c6:e1:ff:66:
b1:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:E3:EF:D0:5F:7F:E1:28:14:26:70:4C:B6:EB:34:74:A5:20:23:EB
X509v3 Authority Key Identifier:
keyid:9D:75:CF:6C:60:19:F0:59:E4:65:E4:DE:B2:04:CD:24:2B:D4:B4:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nXXPbGAZ8FnkZeTesgTNJCvUtGU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/d04f1b-074c-495e-a431-76b1ae62f072/1/nXXPbGAZ8FnkZeTesgTNJCvUtGU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/d04f1b-074c-495e-a431-76b1ae62f072/1/nXXPbGAZ8FnkZeTesgTNJCvUtGU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
73:64:24:30:39:b7:a6:55:bc:b9:60:d0:92:d9:e1:b2:3b:dc:
64:44:09:8b:c9:77:d2:9b:37:81:67:a9:a2:56:7f:89:e1:86:
9c:31:cb:c3:07:b3:f2:66:b9:08:62:77:be:c3:ba:35:d2:89:
3d:35:b4:e7:21:5e:d9:7f:ec:0b:5f:16:03:b4:22:1c:8e:24:
29:33:37:40:45:97:01:06:d2:95:dc:f5:65:03:ec:74:db:6b:
4c:9e:ce:26:8e:94:36:97:77:23:d4:45:7b:f8:94:cb:32:e2:
bf:5e:9e:83:5a:c6:a8:9d:88:53:e2:15:a7:54:4e:b9:72:27:
44:f2:14:25:77:20:df:19:dc:1f:3f:7e:87:54:9c:11:99:e4:
49:d8:9b:f8:80:49:63:f0:46:91:71:0f:ff:3c:55:53:3e:28:
3d:35:0f:da:a0:12:84:76:ee:99:9b:ee:cc:67:55:fa:9f:88:
ab:90:7e:76:f5:94:db:c4:a3:88:d3:51:1e:41:6c:02:45:d2:
1f:23:7b:3e:b0:c5:2e:90:99:59:34:d1:29:6d:3a:fb:c9:38:
d0:2e:6e:25:be:00:16:b5:a1:7f:17:a6:95:86:34:f6:00:b3:
51:c9:1a:cd:a6:75:ad:35:01:fb:17:cb:36:95:26:36:f4:bd:
61:f0:77:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 18:45:34 2025 by rpki-client